Researchers

Follow this link to report a vulnerability. A pre-filled email window will open*. Be sure to fill in all the fields. Only submissions in English will be accepted. Please attach an encrypted report with the following information:

• Any special configuration required to reproduce the issue
• Step-by-step instructions to reproduce the issue
• Proof-of-concept or exploit code
• Impact of the issue, including how an attacker could exploit the issue
• Any other relevant information

* If the link does not work please send your submission to cybersecurity@se.com entitled Vulnerability Report. In the body of the email copy and paste in the following fields:

• First Name
• Last Name
• Product Line
• Vulnerable Version
• Vulnerability type [CWE ID if available]
• Source Type
• Organization Name
• Email,
• Phone number
• Country

Note: Schneider Electric will now be releasing security notifications the 2nd Tuesday of every month. By limiting our publish dates to once a month we aim to help our customers plan ahead for patches.